Brocade Mobility RFS Controller System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual
Page 489
Brocade Mobility RFS Controller System Reference Guide
477
53-1003099-01
8
FIGURE 60
Security - Settings screen
6. Refer to the General field to assign or create the following security policy’s to the profile:
NOTE
An Advanced WIPS Policy is only supported on wireless controllers and requires a dedicated WIPS
sensor, but does not require a sensor license. Standard WIPS is available on all RF Domain
managers and supports on channel, off channel and dedicated sensor scanning modes.
Firewall Policy
Use the drop-down menu to select an existing Firewall Policy to use as an additional security
mechanism with this profile. All devices using this profile must meet the requirements of the firewall
policy to access the network. A firewall is a mechanism enforcing access control, and is considered a
first line of defense in protecting proprietary information within the network. The means by which this
is accomplished varies, but in principle, a firewall can be thought of s mechanisms both blocking and
permitting data traffic within the network. If an existing Firewall policy does not meet your
requirements, select the Create icon to create a new firewall policy that can be applied to this profile.
An existing policy can also be selected and edited as needed using the Edit icon.
Wireless Client Role
Policy
Use the drop-down menu to select a client role policy used to strategically filter client connections
based on a pre-defined set of filter rules and connection criteria. If an existing Wireless Client Role
policy does not meet your requirements, select the Create icon to create a new configuration that can
be applied to this profile. An existing policy can also be selected and edited as needed using the Edit
icon.
WEP Shared Key
Authentication
Select this option to require devices to use a WEP key to access the network using this profile. The
controller or service platform use the key algorithm to convert an ASCII string to the same
hexadecimal number. Clients without Brocade Solutions adapters need to use WEP keys manually
configured as hexadecimal numbers. This option is disabled by default.
Client Identity Group
Select the client identity group to apply to this device profile. Client identity is a set of unique
fingerprints used to identify a class of devices. A Client identity group is a set of client attributes that
identify devices and apply specific permissions and restrictions on them.The information is used to
configure permissions and access rules for that device class and can assist administrators by
applying permissions and rules to multiple devices simultaneously. For information on setting a client
identity group configuration that can be selected and applied to a device profile, see